Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method for providing virtual desktop client connection continuity, the method comprising: receiving a session handoff message transmitted from a first client device to a second client device over a short-range wireless connectivity protocol, the first client device operating in sender mode and having a virtual desktop session established with a virtual desktop executing on a remote server, the second client device operating in receiver mode; establishing a private authenticated transmission channel between the first client device and the second client device based on a shared token periodically sent from a server to the first client device and the second client device, wherein the private authenticated transmission channel is established by: exchanging a random key between the first client device and the second client device; computing a second key based on the random key and the shared token periodically sent from the server; exchanging the second key between the first client device and the second client device; and computing a final encryption key based on the second key, the final encryption key used to secure communication on the private authenticated transmission channel; receiving session information used to maintain the virtual desktop session from the first client device to the second client device over the private authenticated transmission channel; displaying to a user of the second client device, an option for transferring the virtual desktop session from the first client device to the second client device; receiving, on the second client device, input indicating acceptance of the session handoff message; and in response to said input, initiating a session handoff process to log the second client device into the virtual desktop using the session information received from the first client device, wherein the session handoff process is completed without requesting authentication information from the user; and disconnecting the virtual desktop session on the first client device in response to completing the session handoff process.
This invention relates to seamless virtual desktop session handoff between client devices using short-range wireless connectivity. The problem addressed is the disruption caused when users switch devices during a virtual desktop session, requiring re-authentication and session re-establishment. The solution enables continuous session access by securely transferring session data between devices without user intervention. The method involves a first client device (sender) with an active virtual desktop session on a remote server and a second client device (receiver). A session handoff message is transmitted between them via a short-range wireless protocol. A private authenticated transmission channel is established using a shared token periodically sent by the server to both devices. This channel is secured through key exchange: a random key is exchanged, a second key is computed from the random key and shared token, exchanged again, and a final encryption key is derived to secure communications. Session information is transferred over this channel, and the second device displays a handoff option. Upon user acceptance, the second device logs into the virtual desktop using the received session data, bypassing authentication. The first device's session is then disconnected. This ensures uninterrupted access to the virtual desktop across devices.
2. The method of claim 1 , wherein the session handoff process further comprises: invoking a Uniform Resource Identifier (URI) handler on the server by the second client device by passing the session information to the URI handler.
This invention relates to session handoff between client devices in a networked system, addressing the challenge of seamlessly transferring active sessions from one device to another. The method involves initiating a session handoff process where a first client device, engaged in an active session with a server, transfers session information to a second client device. The session information includes data necessary to reconstruct the session state on the second device, such as authentication tokens, session identifiers, and application-specific state data. The second client device then invokes a Uniform Resource Identifier (URI) handler on the server by passing the session information to the handler. The URI handler processes this information to establish a new session on the second device that mirrors the state of the original session on the first device. This ensures continuity of user experience across devices without requiring the user to re-authenticate or restart the session. The method may also include additional steps such as validating the session information, synchronizing application state, and notifying the first device of the handoff completion. The invention is particularly useful in environments where users frequently switch between devices, such as in multi-device computing ecosystems or collaborative applications.
3. The method of claim 1 , wherein the session information is stored in a data structure that comprises: a session identifier that identifies the virtual desktop session; and a server address that identifies the server hosting the virtual desktop.
This invention relates to virtual desktop infrastructure (VDI) systems, specifically addressing the management and tracking of virtual desktop sessions. The problem being solved involves efficiently storing and retrieving session information to facilitate seamless user access and session management in distributed computing environments. The method involves storing session information in a structured data format that includes a session identifier and a server address. The session identifier uniquely identifies a virtual desktop session, allowing the system to distinguish between multiple active sessions. The server address specifies the physical or virtual server hosting the virtual desktop, enabling the system to locate and reconnect users to their active sessions. This structured approach ensures that session data is organized and accessible, improving performance and reliability in VDI deployments. The data structure may also include additional session attributes, such as user credentials, session state, or performance metrics, to enhance session management capabilities. By maintaining this information in a centralized or distributed database, the system can efficiently handle session migration, load balancing, and failover scenarios. This method ensures that users can quickly reconnect to their virtual desktops without disruptions, even in dynamic or high-availability environments. The structured storage of session information optimizes resource utilization and improves the overall user experience in virtual desktop environments.
4. The method of claim 1 , wherein the short-range communications protocol is Bluetooth Low Energy (BTLE), wherein the first client device operates in a peripheral role of BTLE and wherein the second client device operates in a central role of BTLE.
This invention relates to wireless communication systems using Bluetooth Low Energy (BTLE) for data exchange between devices. The problem addressed is optimizing power efficiency and communication reliability in short-range wireless networks, particularly in scenarios where devices alternate between central and peripheral roles in BTLE communication. The invention describes a method for establishing a communication link between a first client device and a second client device using BTLE. The first client device operates in the peripheral role, which typically broadcasts advertising packets to announce its presence and services. The second client device operates in the central role, scanning for and connecting to peripheral devices to initiate data exchange. This role assignment ensures that the peripheral device conserves power by only transmitting when necessary, while the central device actively manages the connection. The method includes steps for the peripheral device to advertise its availability, the central device to scan for and detect the peripheral, and the establishment of a bidirectional communication channel. The peripheral device may include specific service data in its advertising packets to facilitate faster connection setup. The central device may use this data to determine compatibility before establishing the link. Once connected, the devices exchange data efficiently, with the peripheral device minimizing power consumption by reducing transmission frequency when idle. This approach improves energy efficiency in battery-powered devices while maintaining reliable communication, making it suitable for applications like IoT sensors, wearable devices, and smart home systems.
5. The method of claim 1 , wherein receiving the session handoff message further comprises: verifying that the first client device and the second client device are associated with the user's account or share a trusted key.
This invention relates to secure session handoff between client devices in a computing environment. The problem addressed is ensuring secure and authorized transfer of active sessions from one device to another, preventing unauthorized access while maintaining continuity of user experience. The method involves receiving a session handoff message from a first client device, where the message includes session data and an identifier for a second client device. Before transferring the session, the system verifies that both devices are associated with the same user account or share a trusted cryptographic key. This verification step ensures only authorized devices can receive the session. The session data may include application state, network connections, or other contextual information needed to resume the session on the second device. The method also includes transferring the session data to the second client device and initiating the session on that device, allowing the user to continue their work seamlessly. The verification process may involve checking account credentials, device authentication tokens, or cryptographic proofs to confirm the relationship between the devices. This approach enhances security by preventing unauthorized session transfers while maintaining user convenience.
6. A computing system, comprising: at least one processor; and memory including instructions that, when executed by the at least one processor, cause the computing system to perform the steps of: receiving a session handoff message transmitted from a first client device to a second client device over a short-range wireless connectivity protocol, the first client device operating in sender mode and having a virtual desktop session established with a virtual desktop executing on a remote server, the second client device operating in receiver mode; establishing a private authenticated transmission channel between the first client device and the second client device based on a shared token periodically sent from a server to the first client device and the second client device, wherein the private authenticated transmission channel is established by: exchanging a random key between the first client device and the second client device; computing a second key based on the random key and the shared token periodically sent from the server; exchanging the second key between the first client device and the second client device; and computing a final encryption key based on the second key, the final encryption key used to secure communication on the private authenticated transmission channel; receiving session information used to maintain the virtual desktop session from the first client device to the second client device over the private authenticated transmission channel; displaying to a user of the second client device, an option for transferring the virtual desktop session from the first client device to the second client device; receiving, on the second client device, input indicating acceptance of the session handoff message; and in response to said input, initiating a session handoff process to log the second client device into the virtual desktop using the session information received from the first client device, wherein the session handoff process is completed without requesting authentication information from the user; and disconnecting the virtual desktop session on the first client device in response to completing the session handoff process.
This invention relates to seamless virtual desktop session handoff between client devices using short-range wireless connectivity. The problem addressed is the disruption caused when users switch devices during a virtual desktop session, requiring re-authentication and session re-establishment. The solution enables secure, authenticated session transfer without user intervention. The system includes a computing device with a processor and memory executing instructions to facilitate session handoff. A first client device, operating in sender mode, maintains an active virtual desktop session with a remote server. A second client device, in receiver mode, receives a handoff message from the first device via a short-range wireless protocol. Both devices periodically receive a shared token from a server, which is used to establish a private, authenticated transmission channel. This involves exchanging a random key, computing a second key from the random key and shared token, exchanging the second key, and deriving a final encryption key for securing communications. Session information is transferred from the first device to the second over this channel. The second device presents a handoff option to the user. Upon acceptance, the second device logs into the virtual desktop using the received session information, bypassing authentication. The first device's session is then disconnected. The process ensures secure, uninterrupted session continuity across devices.
7. The computing system of claim 6 , wherein the session handoff process further comprises: invoking a Uniform Resource Identifier (URI) handler on the server by the second client device by passing the session information to the URI handler.
This invention relates to computing systems that facilitate seamless session handoff between client devices. The problem addressed is the disruption in user experience when transitioning between devices during an active session, such as when moving from a mobile device to a desktop computer. The system enables continuous session persistence by transferring session state and context between devices without requiring manual reauthentication or data reentry. The computing system includes a server and multiple client devices. The server maintains session information for active sessions, including user authentication data, application state, and contextual information. When a user initiates a session handoff from a first client device to a second client device, the system transfers the session information to the second device. The second client device then invokes a Uniform Resource Identifier (URI) handler on the server, passing the session information to the handler. This allows the second device to seamlessly resume the session where the first device left off, maintaining continuity in the user experience. The URI handler processes the session information to restore the session state on the second device, ensuring that all relevant data and context are preserved. This approach minimizes interruptions and enhances productivity by eliminating the need for manual session reinitialization.
8. The computing system of claim 6 , wherein the session information is stored in a data structure that comprises: a session identifier that identifies the virtual desktop session; and a server address that identifies the server hosting the virtual desktop.
This invention relates to computing systems that manage virtual desktop sessions, addressing the challenge of efficiently tracking and accessing session information across distributed servers. The system stores session details in a structured format to enable quick retrieval and management of virtual desktop environments. The data structure includes a session identifier, which uniquely distinguishes each virtual desktop session, and a server address, which specifies the physical or logical location of the server hosting the session. This structured approach allows the system to dynamically associate sessions with their respective servers, facilitating seamless user access and resource allocation. The solution improves session management by centralizing key identifiers, reducing latency in session retrieval, and ensuring accurate routing of user requests to the correct server. The data structure may also include additional metadata, such as session state or user credentials, to enhance functionality. By organizing session information in this manner, the system optimizes performance and scalability in virtual desktop environments, particularly in multi-server deployments where tracking session locations is critical. The invention is applicable in cloud computing, enterprise virtualization, and remote desktop services, where efficient session management is essential for user experience and system reliability.
9. The computing system of claim 6 , wherein the short-range communications protocol is Bluetooth Low Energy (BTLE), wherein the first client device operates in a peripheral role of BTLE and wherein the second client device operates in a central role of BTLE.
This invention relates to a computing system that facilitates communication between client devices using a short-range wireless protocol. The system addresses the challenge of efficiently managing device-to-device interactions in environments where low power consumption and reliable connectivity are critical. The system includes at least two client devices, each capable of establishing a direct communication link using a short-range protocol. One device operates as a peripheral, initiating the connection and broadcasting its presence, while the other acts as a central device, scanning for and connecting to the peripheral. In this implementation, the short-range protocol is Bluetooth Low Energy (BTLE), a power-efficient standard designed for intermittent data exchange. The peripheral device advertises its availability, allowing the central device to discover and establish a connection. This setup enables low-latency, low-power communication for applications such as sensor data transfer, device pairing, or proximity-based services. The system ensures seamless interaction between devices by defining clear roles for each participant, optimizing energy usage, and maintaining reliable connectivity. The invention is particularly useful in scenarios where battery life and efficient data exchange are priorities, such as in wearable devices, IoT sensors, or mobile applications.
10. The computing system of claim 6 , wherein receiving the session handoff message further comprises: verifying that the first client device and the second client device are associated with the user's account or share a trusted key.
A computing system facilitates secure session handoff between client devices by verifying authentication before transferring active sessions. The system includes a server configured to manage user sessions across multiple devices. When a session handoff request is initiated, the server receives a handoff message from a first client device, which includes session data and authentication credentials. The system verifies that the first client device and a second client device are either associated with the same user account or share a trusted cryptographic key. This verification ensures that only authorized devices can participate in the handoff process. Once verified, the server transfers the active session from the first device to the second device, allowing seamless continuity of the user's activities. The system may also include additional security measures, such as encrypting the session data during transfer and validating device identities through a trusted authentication service. This approach prevents unauthorized access and ensures secure session transitions between devices.
11. A non-transitory computer readable storage medium comprising one or more sequences of instructions, the instructions when executed by one or more processors causing the one or more processors to execute the operations of: receiving a session handoff message transmitted from a first client device to a second client device over a short-range wireless connectivity protocol, the first client device operating in sender mode and having a virtual desktop session established with a virtual desktop executing on a remote server, the second client device operating in receiver mode; establishing a private authenticated transmission channel between the first client device and the second client device based on a shared token periodically sent from a server to the first client device and the second client device, wherein the private authenticated transmission channel is established by: exchanging a random key between the first client device and the second client device; computing a second key based on the random key and the shared token periodically sent from the server; exchanging the second key between the first client device and the second client device; and computing a final encryption key based on the second key, the final encryption key used to secure communication on the private authenticated transmission channel; receiving session information used to maintain the virtual desktop session from the first client device to the second client device over the private authenticated transmission channel; displaying to a user of the second client device, an option for transferring the virtual desktop session from the first client device to the second client device; receiving, on the second client device, input indicating acceptance of the session handoff message; and in response to said input, initiating a session handoff process to log the second client device into the virtual desktop using the session information received from the first client device, wherein the session handoff process is completed without requesting authentication information from the user; and disconnecting the virtual desktop session on the first client device in response to completing the session handoff process.
This invention relates to secure session handoff of virtual desktop sessions between client devices using short-range wireless connectivity. The problem addressed is the need for seamless and secure transfer of active virtual desktop sessions from one device to another without requiring re-authentication, while ensuring data privacy during the handoff process. The system involves a first client device operating in sender mode with an active virtual desktop session connected to a remote server, and a second client device operating in receiver mode. A session handoff message is transmitted between the devices over a short-range wireless protocol. A private authenticated transmission channel is established between the devices using a shared token periodically sent from a server. The process includes exchanging a random key, computing a second key based on the random key and shared token, exchanging the second key, and computing a final encryption key to secure the channel. Session information is transferred over this secure channel, and the second device displays an option to accept the handoff. Upon user acceptance, the second device initiates a session handoff process, logging into the virtual desktop using the received session information without requiring re-authentication. The original session on the first device is then disconnected. This ensures a smooth and secure transition of the virtual desktop session between devices.
12. The non-transitory computer readable storage medium of claim 11 , wherein the session handoff process further comprises: invoking a Uniform Resource Identifier (URI) handler on the server by the second client device by passing the session information to the URI handler.
This invention relates to session handoff between client devices in a computing environment. The problem addressed is the seamless transfer of active sessions between devices without requiring users to manually reconnect or reauthenticate. The solution involves a non-transitory computer-readable storage medium storing instructions that, when executed, enable a session handoff process. The process includes receiving session information from a first client device, where the session information identifies an active session on a server. The session information is then transmitted to a second client device, allowing the second device to take over the session. The session handoff process further includes invoking a Uniform Resource Identifier (URI) handler on the server by the second client device, passing the session information to the URI handler. This ensures the second device can seamlessly continue the session without interruption. The system may also include a session manager that coordinates the handoff, ensuring session state and context are preserved during the transfer. The invention improves user experience by enabling continuous access to active sessions across multiple devices without manual intervention.
13. The non-transitory computer readable storage medium of claim 11 , wherein the session information is stored in a data structure that comprises: a session identifier that identifies the virtual desktop session; and a server address that identifies the server hosting the virtual desktop.
This invention relates to virtual desktop infrastructure (VDI) systems, specifically addressing the challenge of efficiently managing and tracking virtual desktop sessions across multiple servers. The technology provides a method for storing session information in a structured format to facilitate session management, load balancing, and user authentication. The session information is stored in a data structure that includes a session identifier uniquely identifying the virtual desktop session and a server address specifying the server hosting the virtual desktop. This structured approach enables quick retrieval and management of session data, improving system performance and user experience. The data structure may also include additional metadata such as user credentials, session state, and resource allocation details, allowing for comprehensive session tracking and optimization. By centralizing session information in this manner, the system can efficiently handle session migration, load balancing, and failover scenarios, ensuring seamless access to virtual desktops for end-users. The invention enhances the scalability and reliability of VDI environments by providing a standardized way to organize and access session-related data.
14. The non-transitory computer readable storage medium of claim 11 , wherein receiving the session handoff message further comprises: verifying that the first client device and the second client device are associated with the user's account or share a trusted key.
This invention relates to secure session handoff between client devices in a computing environment. The problem addressed is ensuring secure and seamless transfer of active sessions between devices while maintaining user authentication and data integrity. The solution involves a non-transitory computer-readable storage medium containing instructions for handling session handoffs between devices associated with the same user account or sharing a trusted cryptographic key. The system receives a session handoff message from a first client device, which includes session state information. Before transferring the session to a second client device, the system verifies that both devices are linked to the same user account or possess a shared trusted key. This verification step ensures that only authorized devices can participate in the handoff, preventing unauthorized access to active sessions. The session state information may include application data, session tokens, or other contextual information necessary to resume the session on the second device without disruption. The verification process may involve checking account credentials, validating cryptographic signatures, or confirming key pairs. Once verified, the session state is securely transmitted to the second client device, allowing the user to continue their activity seamlessly. This approach enhances security by preventing unauthorized session transfers while maintaining usability across multiple devices. The solution is particularly useful in multi-device environments where users frequently switch between devices during a single session.
Unknown
October 20, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.